WIKINDX News
Virtual Research Environment / On-line Bibliography Manager
Brought to you by:
sirfragalot
Dear users,
Two serious security vulnerabilities were recently found in the PHP interpreter. They allow the bypassing of cookie security and the validation of incorrect passwords.
__Host-/__Secure-
cookie bypass due to partial CVE-2022-31629 fix). (CVE-2024-2756)The PHP versions affected are:
We recommend that you update your installation to one of these versions as soon as possible:
WIKINDX is indirectly affected by these flaws. However, if your WIKINDX installation is not exposed to the Internet, the risk is less.
--
Stéphane Aulery for WIKINDX Team